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METHOD AND APPARATUS TO ENABLE A FIRST SUBSCRIBER IN A LARGER NETWORK TO REIRIEVE THE 
ADDRESS OP A SECOND SUBSCRIBER IN A VIRTUAL PRIVATE. NETWORK 

Technical Field 

The present mvenrion relates to the communication between terminals connected to 
5 data or multimedia networks, such as the Internet. 



Background 

Internet Protocol (IP) type networks are used to an increasing degree for data, video 
and audio communication. It is a problem for subscribers in such networks to find 
10 the physical addresses, or IP addresses, of subscribers in other networks or 
subnetworks. 

Summary of the Invention 

It is an object of the present invention to enable a subscriber in any part of an IP 
15 based network to locate other subscribers in the same or other parts of the ff based 
network. 



It is another object of the invention to enable subscribers in any part of an IP based 
network to connect to other subscribers in the same or other parts of the IP based 
20 network, for any kind of communication according to any known protocol. 

It is yet another object of the invention to enable a subscriber to move between 
different locations in the network and still be reached. 



25 The objects are achieved in a network by using a name server means according to 
the invention for each Virtual Private Network (VPN) connected to the network, the 
name server means being adapted to 

- resolve a logical address in the VPN to the real IP address of hosts and user 
terminals for a specific service, such as e-mail or communication according to the ^ 
30 H.323 protocol. 
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- function as a look-up table between the logical E,164 addresses in the VPN -and the 
real IP addresses of the hosts and users 

- cooperate with connection means for caU set-up. 

5 The solution according to the invention offers the following advantages: 

As it is based on known solutions, it may be implemented at a relatively low cost. 
It involves the separation of an internal and an external number plan, thus increasing 
the flexibihty in the network. 

It enables the connection between an H.323 domain and an Internet domain. 

10 

Brief Description of the Drawings 

Ficure 1 is a schematic drawing of a connection between nvo user terminals set up 
according to a first embodiment of the invention. 
15 Figure 2 is a flow chart of the actions performed when a connection between two 
user terminals is set up according to the first embodiment. 
Figure 3 is a schematic drawing of a connection between two subscribers set up 
according to a second embodiment of the invention. 

Figure 4 is a flow chan of the actions performed when a connection between two 
20 user terminals is set up according to the second embodiment. 

Detailed Description of Embodiments 

The doned line in Figure 1 shows a connection between a first 1 and a second 3 user 
terminal. The terminals 1, 3 may be any kind of terminals which may be used for 

25 communication, for example personal computers (PCs) or telephones. The first user 
tenninal 1 is connected to a data or telecommunications network 5 via a leased line, 
a modem a corporate network, or in any other way. The network 5 may be any 
network allowing communication between two end points on a logical connection, 
which may be packet switched or circuit switched. A common network today, in 

30 which the teachings of the invennon may become particularly usefiil, is the Internet. 
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In the following discussion, therefore, the network 5 will be referred to as the * 
Internet. 

The second user terminal is found in a Virtual Private Network (VPN) 7, which 
5 functions as an Internet domain. A name server 9 in the VPN 7 is coimected to the 
Internet 5 and to a connection unit 1 1. In TCP/IP networks the name server 9 might 
be a Domain Name Server (DNS) well known in the an. If the H.323 protocol for 
data, audio and video communication is used, the connection unit 1 1 might be a 
gatekeeper, of a kind well known in the art. The connection unit 1 1 is coimected to 
10 the second user terminal 3 with a semi-permanent connection. 

The name server 9 is a database comprising, in addition to the information found in 
prior an name servers, an MX record 13 for each user terminal in the VPN 7. The 
MX record comprises information about the IP addresses of all user terminals in the 
15 VPN 7 for different types of communication, for example, e-mail, H.323, or telnet 
coimections. 

Fiffure 2 shows the actions taken when the first user 1 in the first embodiment 
wishes to establish a coimection to the second subscriber 3. 



20 



SiepSll: 



The first user 1 connects to the name server 9 and requests the gate 
number for H.323 and enters the known address of the second user 3. 



25 



Step S 12: 



The name server 9 determines what type of connection is wanted and 
forwards the request to the connection unit 1 1, together with the address 
of the first user 1. 



Steps 13: 



The coimection unit 11 retrieves the appropriate IP address of the 
second user 3 for the type of connection, in this case, the H.323 address. 
The type of connection may be determined, for example, by the pon of 
the name server at which the connection is made. 
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Step S14: The connection unit 11 establishes the connection between the users 1, 



5 Figure 3 shows a second embodiment of the invention. In this embodiment a first 
user terminal V is connected to a second user terminal 3* as shown by the dotted 
line. The second user terminal is foimd in a VPN 7', which also comprises a name 
server 9\ identical to the name server 9 in Figure 1. A user directory 1 T is 
coimected to the name server 9'. The user directory 9' comprises information about 

10 the physical addresses of the user terminals 3' in the VPN 7Mn a TCP/IP network, 
the name server will be a Domain Name Server (DNS) and the user directory will be 
a Lightweight Directory Access Protocol (LAPD) server of the kinds known in the 
art. 

15 Figure 4 shows the actions taken when the first user 1* in the second embodiment 
wishes to establish a connection to the second subscriber 3\ 

Step S21: The first user 1 ' connects to the name server 9' and transmits the 
known, logical address of the second user 3* to the name server 9\ 

20 

Step S22: The name server 9' detennines what type of coimection is wanted and 
forwards the logical address of the second user 3' to the \iser directory 
irofthcVPN?'. 

25 Step S23: The user directory 1 1 ' retrieves the physical address corresponding to 
the logical address entered. 

Step S24: The user directory 1 1 * returns the physical address of the second user 3' 
to the fu"St user T via the name server 9\ 

30 
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Step S25: The first user V initiates the connection to the second user 3' in a-- 
conventional manner. 



If the first user V knows the address to the user directory 11', he can go directly to 
the user directory IT instead of connecting via the name server 9'. 
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Claims 

1. A name server means (9; 9') for use in a vinual private network (7; 7'), or a 
network domain, forming part of a compound network, 
5 said means (9; 9') being characterized by means (13;13') for receiving a request for 
the physical address of a user terminal (3; 3') from another user terminal (1; V) and 
forwarding said request to a connection means (11; 1 T) in the virtual private 
nenvork (7; 7') or network domain. 

10 2. A name server means according to claim 1, characterized in that the logical 
addresses comprise IP addresses, addresses according to the E.164 protocol and/or 
other logical identities according to the appropriate nirnibering plan, 

3. A name server means according to claim 1 or 2, characterized by means (11, 11') 
15 for initiating the connection between two subscribers (1, 3). 

4. A connection means (11; 1 T) for use in a virtual private network (7; 7') or a 
network domain, forming pan of a compound network, said connection means being 
characterized in that it is adapted to return, upon a request comprising a logical 

20 address of a user (3;3') in Uie vinual private network (7; 7'), a physical address of 
said user (3; 3'). 

5. A connection means (11; IT) according to claim 4, characterized in that it is 
adapted, upon a request originating from a user ( 1 ; T) in said compound network, 

25 said request comprising a logical address of a user (3; 3 ') in the virtual private 
network (7; 7'), to establish a connection between said users (1, 3; 1' 3'). 

6. A telecommunications or data commumcarions network, forming part of a 
compound network, characterized by at least one connection means, according to . 

30 claim 4 or 5. 
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7. A network according to claim 6, characterized by at least one name server means 
according to any one of claims 1-3. 

5 8. A method for enabling a user (1 ; 1' ) in compound network to retrieve the IP 
address of a second user (3; 3*) in a viimal private nerworic (7; 7*) or a network 
domain, forming part of said compound network, 
characterized by the following steps: 

- transmitting a request for a physical address, the request comprising a logical 
10 address of the second user (3; 3') 

- forwarding the logical address of the second user (3; 3') to a connection means 

(11); 

. renmung the logical address to the first user (1; D or automatically establishing a 
connection between the fu-st (1; V) and the second (3; 3') user. 

15 

9. A method according to claim 8, characterized by 

. automatically establishing a connection between the first (1) user and the second 
user (3). 

20 10. A method according to-claim 8, characterized by 

- rettiming the address of the second user (3 ') to the first user ( 1 

1 1. A method according to any one of claims 8-10, characterized by detennimng 
the type of address to be used in dependence of the port of the name server (9; 9') on 

25 which the request was received. 

12. A method according to any one of claims 6-11, characterized in that the 
physical address may be an e-mail-address, and/or an E. 164 address. 
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FIG.l, 




FIG.3 



SSOOCIO: «WO_9e58470A2J.> 



SUBSTITUTE SHEET (RULE 26) 



wo 98/59470 



PCT/SE98/01217 



C START ^ 







ADDRESS ' 
REQUEST TO 
NA^€ SERVER 







vsn 



FORWARD 
REQUEST TO 
CONNECTION 
UNIT 






RETRIEVE • 
J^HYSICAL 
ADDRESS 






ESTABLISH 
CONNECTION 







.512 



FIQ.2 



2/2 



^ START ■> 



ADDRESS 
REQUEST TO 
NAh€ SERVER 



.S21 



FORWARD 
REQUEST TO 
USER 

DIRECTORY 



wS22 



I 



RETRIEVE 
PHYSICAL 
ADDRESS 



— 1/S23 



RETURN PHYSICAL 
AJDRESS 



ESTABLISH 
CON(€CTION 



■S25 



(end j 
FIGA 



BNSCXSID: <WO 9e60470A2 I > 



SUBSTITUTE SHEET (RULE 26) 



WORLD INTELLECTUAL PROPERTY ORGANIZATION 
1 Bureu 




PCX 1 

INTCRNATIONAL APPUCATION PUBUSHED UNDER THE PATENT COOPERATION TREATY (PCT) 



(51) International Patent Classification ^ : 
H04L 12/56, 29/02 



A3 



(11) International Publication Number: WO 9S/59470 

(43) International PubUcation Date: 30 December 1998 (30.12.98) 



(21) International Application Number: PCT/SE98/01217 

(22) International FWng Date: 23 June 1998 (23.06.98) 



(30) Priority Date: 
9702385-7 



23 June 1997 (23.06.97) 



SE 



(71) Applicante (/br all designated States except US): TELEFON- 

AKTIEBOLAGET LM ERICSSON (publ) [SE/SE]; S-126 
25 Stockholm (SE). TEUA AB [SE/SE]; S-123 86 Fanta 
(SE). 

(72) Inventors; and 

(75) Inventors/Applicants (for US only): ICANTER, Thco [NUSE); 
ROnninge skoiv&g 3SE. S-144 62 ROnninge (SE). FOGEL- 
HOLM. Rabbc [SE/SE]; Tuievagcn 54 B, S-191 47 SoUen- 
tuna (SE). 

(74)Agente: HERBJ0RNSEN, Rut et al4 Albihns Patcntbyrt 
Stocichoim AB, P.O. Box 3137. S-103 62 Stockholm (SE). 



(81) Designated Stetes: AL. AM. AT, AU. AZ. BA. BB. BG. BR. 
BY. CA. CH. CN. CU. CZ, DE DK, EE. ES, FL GB, GE. 

GH. GM. GW, HU. ID. IL. IS. IP. KE, KG. KP, KR, ICZ. 
LC. LK, LR, LS, LT. LU. LV. MD. MG. MK, MN. MW, 
MX. NO, NZ, PU PT. RO. RU. SD, SE, SG. SL SK, SU 
TJ, TM. TR. IT, UA, UG, US. UZ, VN. YU. ZW. ARIPO 
patent (GH. GM. KE, LS. MW. SD, SZ, UO. ZW), Eurasian 
patent (AM. AZ, BY. KG. KZ. MD. RU, T7. TM). European 
patent (AT. BE, CH. CY, DE, DK, ES, FI, FR. GB, GR. 
IE, IT. LU, MC NL, PT, SE). OAPl patent (BF, BJ. CP. 
CG, a. CM. GA. GN. ML, MR. NE, SN. TD. TO), 



Published 

With international search report. 

Be/ore the expiration of the time limit for amending the claims 
and to be republished in the event of the receipt of amendmenu. 

(88) Dale of pablication of the intcniatioaal learch rcpart: 

18 March 1999 (18.03.99) 



(54) Titk: METHOD AND APPARATUS TO ENABLE A FIRST SUBSCRIBER IN A LARGER NETWORK TO RETRIEVE THE 
ADDRESS OF A SECOND SUBSCRIBER IN A VIRTUAL PRIVATE NETWORK 




(57) Abstract 

The present invention relates to an appaianjs and a method use in a virtual private netwoik, VPN, a, T\ or a n«wofk domain 
forming part of a larger network, such as the Internet, to enable a firat subscriber (1; D in the larger netwoik to retrieve the address ofa 
second subscriber (3; 3*) in the VPN. The address may be reiumcd to the first subscriber (1; T) or a connection means (11) may set up the 
connection between the subscriben (1. 3; r. 3') automaUcally. 



h <WO_9e6e470A3J_» 



FOR THE PURPOSES OF INFORMATiW ONLY 



Codes used to ideatiiy States paity to the PCT on the from pages of pamphlets publishing international applications under the PCT. 



AL 


Albmtt 


ES 


SpUB 


18 


Lesotho 


SI 




AM 


Armenia 


n 


Fialad 


LT 


LUmaaia 


SK 




AT 


Autnt 


FR 




LU 


LuxeniboaiB 


SN 




AU 


Ausnlii 


GA 




LV 


Larvia 


sz 


Swaxilaiid 


AZ 


AZOtMUJM 


GB 


United KntdOB 


MC 


Monaco 


TD 


Chad 


BA 


BoAu ind HcfxcfOMM 


GS 


Geoffii 


MD 


KepUOuC Ol IWOMOW 


TC 


TOfD 


BB 




GH 


Ghm 


MG 


MadagMCV 


T3 


TajikiMaB 


BE 


BeigiuiB 


GN 




MK 


Tim fanner Yagoatev 


TM 




BP 


Bnrkim Fmo 


GR 


Greece 




Republic of MKodODia 


TR 


Turkagr 


BG 


Bulgiiia 


HU 


Himguy 


ML 


Mali 


TT 


l^intdad and Tobago 


BJ 


IE 


Ireland 


MN 


Mongolia 


UA 


UkniM 


BR 


Bfufl 


IL 




MR 


MauriiaBii 


UG 


Uganda 


BY 


Belms 


IS 


Iceland 


MW 


Malawi 


US 


United Staiea of Amc 


CA 


Canida 


IT 




MX 


Mexico 


UZ 


Uibekina 


CF 


Ceatnl AlHcan RepoMic 


JP 


Jipn 


NE 


Niger 


VN 


Viet Nam 


CG 


SwtatrlmJ 


K£ 


Kenya 


NL 


Netherlandi 


YV 


Yagoalavia 


CH 


KG 




NO 


Nonvay 


zw 




a 




KP 


Denwcmie Peapb'a 


NZ 


New Zealand 






CM 


CaneraoB 




Republic of Km 


PL 


PolMid 






CN 




KR 


Republic of KflRt 


PT 


Poctugal 






CU 


Cote 


KZ 


Kuaktian 


RO 


Romania 






cz 


CzBCh Rcpobbc 


LC 


Saint Lucia 


Ri; 


Ruatiaa Fedcntioa 






DE 




U 


LiechteosieiB 


SD 


Sudan 






DK 


Dennaik 


LK 


Sri Lanka 


SE 


Sweden 






EE 


Ettonk 


LR 




SG 


SiagapOR 







MSIXXIO: <WO 9e60«70A3_l.> 



INTERNATIONAL SEARCH REPORT 



International appHcaUon No. 

PCT/SE 98/01217 



A. CLASSIFICATION OF SUBJECT MATFER 



IPC6: H04L 12/56. H04L 29/02 

AccurdinR io IniernaUonal Patent ClMtifiotion (IPC) or to both naUonri clmifieation und IPC 



B. FIELDS SEARCHED 



Minimum documemaiion searched (dauiTicaUon lynem followed by clautTic&tion tymbota) 

IPC6: H04L 



>ncufnenution searched other than minimum documenution to the cxunt that such documents arc included in the fields searched 

SE,OK,FI,NO classes as above 



Electronic dau base consulted during the inurnatlunal search (name of data base and, where practicable, search urms used) 



WPIL, EPOC, JAPIO 



C OOCUMEN^rS CONSIDERED TO BE RELEVANT 



Category' 



Citation of docuinenl* with indication, where appropriate, of tlie relevant passages 



Rdcvani lo claim No. 



ITU-T Recommendation H. 323, 1996. 

"Visual telephone systems and equipment for 
local area networks which provide a non- 
guaranteed quality of service" 
Paragraph 6.4. 3.41. 3.43 



IETF RFC 883, Volume. November 1983, 

P. Mockapetris, "DOMAIN NAMES - IMPLEMEntATION and 
SPECIFICATION" page 23 



IETF RFC 1383. Volume, December 1992. C. Huitenia, 
"An Experiment in DNS Based IP Routing", 
paragraph 2 



4-6 



1-3.7-12 



1-3.7-12 



1-12 



Pxl Funlier documents are listed in the continuation of Box C See patent family annex. 



* Special caletohcs of dtcd documcmc 

"A' dncwnmt dednnt the general state of the wt which is not cowndered 

to be of parti eular relevance 
"R" erlier docianent but publidied an or aAer ihe mifmaoonal fiKtig date 
"I document which may throw doubu en pnority daim(s) or which is 

atcd to eAablirii the pubHcatton dau of another auoon or other 

special reason (as spedfied) 

"O' document rcfcinng to an oral disclosure, use, txhibition or other 
meant 

•P" document published priw to the imcmaoonal Qllni dale but later than 
the pnority date d aimed 



T* later document putriishcd after the intematianal filins data or priority 
date and not in conOiet wtth the application but dted to understand 
the prinaplc or theory trndclyinf the invention 

•X' donimeni of particular relevance the rt aimed invtntion cannot be 
confidered novd or cannot be conadercd to involve an mvenove 
step when the documsM is taken alone 

' Y' document of partictdar rdevance tlM daimed invention cannot be 
contidCTed to involve an inventive sice when the document is 
combined with one or more other sua documents^ such combination 
bcinf obvious to a person dcillcd in the art 

'SC document member of the same patent family 



Dale of llic actual complclion of the iniernauoiial search 



12 January 1999 



Date of mailing of Uie international search report 

2 2 -01- 1999 



Name and mailing address of Uie ISA/ 
Swedish Patent Office 
Box 5055. S-102 42 STOCKHOLM 
Facsimile Ne. 4- 46 8 666 02 86 



Authorized officer 

Christina Halldin 

Telephone No. + 46 8 782 25 00 



l-nrm PCT;ISA/210 (second sheet) (July 1992) 



BNSOOCID: <WO_fie5«470«J.» 



INTERNATIONAL SEARCH! REPORT 



International application No. 

PCT/SE 98/01217 



C (Continuation). DOCU M E NTS CONSIDERED TO BE RELEVANT 



Category* 



GtaUon of document, with indication, where appropriate, of the relevant passages 



Relevant to dum No. 



IETF RFC 2052, Volume, October 1996, 

A. Gulbrandsen et al, "A DNS RR for specifying the 
location of services (DNS SRV)". see the whole 
document 



EP 0752674 Al (SUN MICROSYSEMS, INC.), 
8 January 1997 (08.01.97), abstract 



1-12 



1-12 



Furm PCr;ISA./210 (continuaaon of tecond sheet) (July 1992) 



INTERNATIONAL SEARCH REPORT 

Inform alion on patent family memberi 



01/12/98 



tniemational application No. 

PCT/SE 98/01217 



Palenl document 
citeO in starch report 



Publicfttion 



Patent family 
incmbtr(t) 



PublicattOD 
data 



EP 0752674 Al 



08/01/97 



JP 9171465 A 
US 5745683 A 



30/06/97 
28/04/98 



i'lirm PCr;i5A/210 (patent famUy annex) (July 1992) 

y. <WO 9660470*3 I > 



PAGE BUNK ((Bi-io) 



